Is PAM affected by Pivotal Spring Framework Vulnerability CVE-2018-1270?

Document ID : KB000100698
Last Modified Date : 08/06/2018
Show Technical Document Details
Introduction:
A severe vulnerability, CVE-2018-1270, was found recently in the spring framework. We cannot continue to run products/applications that are affected by this vulnerability.
Question:
Are any CA PAM versions affected by Pivotal Spring Framework Vulnerability CVE-2018-1270?
Environment:
The answer applies to all PAM releases currently generally available. The latest release at the time of writing is 3.2.
Answer:
All currently available CA PAM releases are NOT affected by this vulnerability.